2.239.121.161 - IPInfo

Basic Info

City: Rome

Region: Regione Lazio

Country: Italy

Internet Service Provider: Fastweb

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.239.121.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16367
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.239.121.161.			IN	A

;; AUTHORITY SECTION:
.			290	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023011802 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 19 13:32:26 CST 2023
;; MSG SIZE  rcvd: 106

Host info

161.121.239.2.in-addr.arpa domain name pointer 2-239-121-161.ip249.fastwebnet.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.121.239.2.in-addr.arpa	name = 2-239-121-161.ip249.fastwebnet.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.155.227	attackspambots	Mar 3 21:15:00 srv01 sshd[19577]: Invalid user wangyw from 159.65.155.227 port 35152 Mar 3 21:15:00 srv01 sshd[19577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 Mar 3 21:15:00 srv01 sshd[19577]: Invalid user wangyw from 159.65.155.227 port 35152 Mar 3 21:15:02 srv01 sshd[19577]: Failed password for invalid user wangyw from 159.65.155.227 port 35152 ssh2 Mar 3 21:24:24 srv01 sshd[20511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 user=root Mar 3 21:24:26 srv01 sshd[20511]: Failed password for root from 159.65.155.227 port 44018 ssh2 ...	2020-03-04 04:52:12
115.76.34.45	attack	Automatic report - Port Scan Attack	2020-03-04 05:06:05
109.94.182.9	attackbots	REQUESTED PAGE: /wp-admin/admin.php?page=miwoftp&option=com_miwoftp&action=download&dir=/&item=wp-config.php&order=name&srt=yes	2020-03-04 05:03:27
113.22.10.195	attack	Mar 3 14:17:36 mxgate1 postfix/postscreen[12270]: CONNECT from [113.22.10.195]:47395 to [176.31.12.44]:25 Mar 3 14:17:36 mxgate1 postfix/dnsblog[12275]: addr 113.22.10.195 listed by domain zen.spamhaus.org as 127.0.0.3 Mar 3 14:17:36 mxgate1 postfix/dnsblog[12275]: addr 113.22.10.195 listed by domain zen.spamhaus.org as 127.0.0.10 Mar 3 14:17:36 mxgate1 postfix/dnsblog[12275]: addr 113.22.10.195 listed by domain zen.spamhaus.org as 127.0.0.4 Mar 3 14:17:36 mxgate1 postfix/dnsblog[12274]: addr 113.22.10.195 listed by domain cbl.abuseat.org as 127.0.0.2 Mar 3 14:17:36 mxgate1 postfix/dnsblog[12273]: addr 113.22.10.195 listed by domain bl.spamcop.net as 127.0.0.2 Mar 3 14:17:36 mxgate1 postfix/dnsblog[12271]: addr 113.22.10.195 listed by domain b.barracudacentral.org as 127.0.0.2 Mar 3 14:17:42 mxgate1 postfix/postscreen[12270]: DNSBL rank 5 for [113.22.10.195]:47395 Mar x@x Mar 3 14:17:46 mxgate1 postfix/postscreen[12270]: HANGUP after 3.6 from [113.22.10.195]:47........ -------------------------------	2020-03-04 05:05:01
107.191.182.45	attackbots	Port 1433 Scan	2020-03-04 04:54:19
162.214.14.226	attackbotsspam	xmlrpc attack	2020-03-04 05:00:41
190.72.144.80	attack	20/3/3@08:20:26: FAIL: Alarm-Network address from=190.72.144.80 ...	2020-03-04 05:11:37
219.70.18.63	attackspam	Mar 3 14:17:29 server sshd\[3933\]: Invalid user user from 219.70.18.63 Mar 3 14:17:29 server sshd\[3933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-219-70-18-63.dynamic.kbtelecom.net Mar 3 14:17:32 server sshd\[3933\]: Failed password for invalid user user from 219.70.18.63 port 49423 ssh2 Mar 3 17:27:40 server sshd\[7987\]: Invalid user user from 219.70.18.63 Mar 3 17:27:40 server sshd\[7987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-219-70-18-63.dynamic.kbtelecom.net ...	2020-03-04 05:09:44
219.92.250.165	attackbotsspam	firewall-block, port(s): 88/tcp	2020-03-04 05:12:59
139.59.38.252	attack	Mar 3 17:45:03 lnxded63 sshd[25081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.252	2020-03-04 05:07:35
181.52.85.249	attackspambots	REQUESTED PAGE: /wp-admin/admin.php?page=miwoftp&option=com_miwoftp&action=download&dir=/&item=wp-config.php&order=name&srt=yes	2020-03-04 05:17:00
51.158.186.180	attackbots	Mar 3 12:48:51 mxgate1 postfix/postscreen[7949]: CONNECT from [51.158.186.180]:59675 to [176.31.12.44]:25 Mar 3 12:48:57 mxgate1 postfix/postscreen[7949]: PASS NEW [51.158.186.180]:59675 Mar 3 12:48:59 mxgate1 postfix/smtpd[8226]: connect from consortiumdev.com[51.158.186.180] Mar x@x Mar 3 12:48:59 mxgate1 postfix/smtpd[8226]: disconnect from consortiumdev.com[51.158.186.180] ehlo=2 starttls=1 mail=1 rcpt=0/1 quhostname=1 commands=5/6 Mar 3 12:59:00 mxgate1 postfix/postscreen[8747]: CONNECT from [51.158.186.180]:38458 to [176.31.12.44]:25 Mar 3 12:59:01 mxgate1 postfix/postscreen[8747]: PASS OLD [51.158.186.180]:38458 Mar 3 12:59:01 mxgate1 postfix/smtpd[8752]: connect from consortiumdev.com[51.158.186.180] Mar x@x Mar 3 12:59:01 mxgate1 postfix/smtpd[8752]: disconnect from consortiumdev.com[51.158.186.180] ehlo=2 starttls=1 mail=1 rcpt=0/1 quhostname=1 commands=5/6 Mar 3 13:09:01 mxgate1 postfix/postscreen[9388]: CONNECT from [51.158.186.180]:37761 to [176.31........ -------------------------------	2020-03-04 05:10:23
112.85.42.182	attack	Mar 3 20:54:00 localhost sshd[105835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Mar 3 20:54:03 localhost sshd[105835]: Failed password for root from 112.85.42.182 port 57457 ssh2 Mar 3 20:54:06 localhost sshd[105835]: Failed password for root from 112.85.42.182 port 57457 ssh2 Mar 3 20:54:00 localhost sshd[105835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Mar 3 20:54:03 localhost sshd[105835]: Failed password for root from 112.85.42.182 port 57457 ssh2 Mar 3 20:54:06 localhost sshd[105835]: Failed password for root from 112.85.42.182 port 57457 ssh2 Mar 3 20:54:00 localhost sshd[105835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Mar 3 20:54:03 localhost sshd[105835]: Failed password for root from 112.85.42.182 port 57457 ssh2 Mar 3 20:54:06 localhost sshd[105835]: F ...	2020-03-04 04:55:19
93.174.93.123	attack	3377/tcp 777/tcp 4389/tcp... [2020-02-21/03-01]227pkt,184pt.(tcp)	2020-03-04 04:56:04
185.8.50.28	attackspam	Mar 3 20:33:56 grey postfix/smtpd\[15181\]: NOQUEUE: reject: RCPT from unknown\[185.8.50.28\]: 554 5.7.1 Service unavailable\; Client host \[185.8.50.28\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.8.50.28\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-03-04 04:41:07

Recently Reported IPs

2.78.231.158	2.48.126.222	61.0.255.65	23.224.81.218
181.215.176.34	38.30.127.172	248.194.165.214	193.60.85.172
135.181.67.164	230.252.142.102	194.250.162.19	174.115.207.135
161.181.255.2	148.244.156.229	166.121.57.95	75.49.228.209
151.80.245.182	86.195.220.100	255.208.231.142	55.244.138.132